[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

CESA-2017:0352 -- centos 6 qemu-kvm,qemu-guest-agent

ID: oval:org.secpod.oval:def:204447Date: (C)2017-03-02   (M)2023-12-07
Class: PATCHFamily: unix




Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fix: * Quick emulator built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user inside guest could use this flaw to crash the QEMU process OR potentially execute arbitrary code on host with privileges of the QEMU process

Platform:
CentOS 6
Product:
qemu-kvm
qemu-img
qemu-guest-agent
Reference:
CESA-2017:0352
CVE-2017-2620
CVE    1
CVE-2017-2620
CPE    3
cpe:/a:kvm_group:qemu-kvm
cpe:/a:kvm_group:qemu_guest_agent
cpe:/o:centos:centos:6

© SecPod Technologies